How to Audit Roles

The actions that a role performs can be audited. Included in the audit
record is the login name of the user who assumed the role, the role name,
and the action that the role performed. The 6180:AUE_prof_cmd:profile
command:ua,as audit event collects the information. By preselecting
the as class or the ua class, you can
audit role actions.

The ua class and the as class
include other audit events. To see the audit events that are included in a
class, read the audit_event file. You can also use the auditrecord command,
as shown in Example 30–24.